红帽产品勘误 RHSA-2025:7937 - Security Advisory
发布:
2025-05-19
已更新:
2025-05-19

RHSA-2025:7937 - Security Advisory

概述

Important: compat-openssl11 security update

类型/严重性

Security Advisory: Important

Red Hat Lightspeed patch analysis

识别并修复受此公告影响的系统。

查看受影响的系统

标题

An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

描述

The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases.

Security Fix(es):

  • openssl: X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

解决方案

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

受影响的产品

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

修复

  • BZ - 2164440 - CVE-2023-0286 openssl: X.400 address type confusion in X.509 GeneralName

Red Hat Enterprise Linux for x86_64 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

Red Hat Enterprise Linux for Power, little endian 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for ARM 64 9

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
ppc64le
compat-openssl11-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: cc4e307266401ba58b33127e54459d7384b4f6f143204f1e9688a14db94d273f
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: d55786af2c4215555ecd20ea80b531c1eb8930159eaaa7bc70ab9546883ed3b5
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.ppc64le.rpm SHA-256: f5616c83c44156ca5b7accf210e544b6742e8de101fdc845702c413e9dd20af9

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
x86_64
compat-openssl11-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 012385114877fd38e012f245b75fe6201eef343545809d7a55f33e5e9c0668b8
compat-openssl11-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: e4573a2f07756624a20d93e967f840d5aee748965827067a7516ce0670a13031
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 90ea0a344edde87b1b6dcf540d86fe94866347e50ccdc83fdb12bbf20a0ace92
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 412922ddd386a3fb176cfdf8f6e64b1581110df43b83875ef06e2a9994bbd444
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.i686.rpm SHA-256: 658814680277a34ff4e470df5978a37bbc677151f0ebf449ceee122c88db0e73
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.x86_64.rpm SHA-256: 5a6e237ea6b4eab86e38cb660d3424c4669d29e26007b2cde154bc7b819a0fee

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
aarch64
compat-openssl11-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 4d62a8fe879ba1da792cc23451678608e37b7a5107c6063a8a18c0dd98b0c5b5
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: 68c774ee0e448f74f494c6e3616b1b15cf534c4eec85ac139b6502ea56d4fa90
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.aarch64.rpm SHA-256: b7b336b61eab8026a01eda64e913c780ce47e832f1d014b71f674e56e79bb438

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
compat-openssl11-1.1.1k-5.el9_6.1.src.rpm SHA-256: e17f513e92e3fc68a0d4d7c745b5ffbbefae15c15cc23f0de549fc9cf2097313
s390x
compat-openssl11-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: 67e641c9a86b684e9e3ff85090c23b2a2654bb3287d544c1d7c89ab40ce6bd0a
compat-openssl11-debuginfo-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: ac6f2c3fcb4709a673a270f1bcd9e03a2d9d314cd2496ab6a02176156fb27391
compat-openssl11-debugsource-1.1.1k-5.el9_6.1.s390x.rpm SHA-256: a339e8456032e6553590ab2c26853ea35aeef39a4901cb1ebbe2a46002756929

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/